Mandriva Update For Libgtop2 MDKSA-2007:023 (libgtop2) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Stack-based buffer overflow in the glibtop_get_proc_map_s function in libgtop before 2.14.6 (libgtop2) allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a process with a long filename that is mapped in its address space, which triggers the overflow in gnome-system-monitor. The updated packages have been patched to correct this problem.

Affected

libgtop2 on Mandriva Linux 2007.0, Mandriva Linux 2007.0/X86_64

References

http://lists.mandriva.com/security-announce/2007-01/msg00033.php

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-0235
CVSS Base Score: 3.7
AV:L/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Mandriva Update for gd MDVSA-2008:038 (gd)
Mandriva Update for samba MDVSA-2011:148 (samba)
Mandriva Update for timezone MDVA-2011:072 (timezone)
Mandriva Update for vixie-cron MDKSA-2007:234 (vixie-cron)
Mandriva Update for fetchmail MDKSA-2007:105 (fetchmail)

Mandriva Update for libgtop2 MDKSA-2007:023 (libgtop2)

Take action and discover your vulnerabilities